570ad1ed0804c402f9f76c0f4ed47f39

General

Target

570ad1ed0804c402f9f76c0f4ed47f39
Size

10.0MB
MD5

570ad1ed0804c402f9f76c0f4ed47f39
SHA1

3d3c50b03b23fc7dc977bec13227ec8d35489470
SHA256

da8b40451d79d7ff2e2f93057736846f9c78f22bfa39e6c78c2c59886aa08762
SHA512

f2f486ff17867c01b2586d921f4d579cba42c7f5b109a1b980a4f7fe1d76ff5be29e7161dad248e9430d2919046bcf45c48d20f2a1cd12ee9305f211ab5166c7
SSDEEP

196608:699Cb7v12RlUyQoBSHwo2eF6DWpKgtelEq22B4uDoDkwhKZAuFlfNHvj:6zCbZ2RlUyQowF6qKix2u+qKZZZNHvj

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 12 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to see the number being dialed during an outgoing call with the option to redirect the call to a different number or abort the call altogether.	android.permission.PROCESS_OUTGOING_CALLS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to see the number being dialed during an outgoing call with the option to redirect the call to a different number or abort the call altogether.	android.permission.PROCESS_OUTGOING_CALLS
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Required to be able to access the camera device.	android.permission.CAMERA

Files

570ad1ed0804c402f9f76c0f4ed47f39
.apk android arch:arm

com.slanissue.apps.mobile.erge

com.slanissue.apps.mobile.bevarhymes.SplashActivity

Activities

com.slanissue.apps.mobile.bevarhymes.SplashActivity

android.intent.action.MAIN
android.intent.action.VIEW

com.slanissue.apps.mobile.bevarhymes.SplashActivity2

android.intent.action.VIEW

com.slanissue.apps.mobile.bevarhymes.VideoViewPlayingActivity

android.intent.action.VIEW

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

Permissions

android.permission.ACCESS_NETWORK_STATE
android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.WRITE_SETTINGS
android.permission.WAKE_LOCK
android.permission.ACCESS_WIFI_STATE
android.permission.PROCESS_OUTGOING_CALLS
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_COARSE_LOCATION
android.permission.SEND_SMS
android.permission.READ_SMS
android.permission.WRITE_SMS
android.permission.VIBRATE
android.permission.WRITE_SETTINGS
android.permission.READ_LOGS
android.permission.PROCESS_OUTGOING_CALLS
android.permission.GET_TASKS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.CAMERA

Receivers

com.umeng.message.RegistrationReceiver

android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_REMOVED

com.umeng.message.UmengBroadcastReceiver

org.agoo.android.intent.action.RECEIVE
com.slanissue.apps.mobile.erge.intent.action.COMMAND
org.agoo.android.intent.action.RE_ELECTION_V2

com.slanissue.apps.mobile.bevarhymes.receiver.UsbBroadCastReceiver

android.intent.action.MEDIA_MOUNTED
android.intent.action.MEDIA_EJECT

com.qihoo.psdk.local.QBootReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE

Services

com.umeng.message.UmengService

com.slanissue.apps.mobile.erge.intent.action.START
com.slanissue.apps.mobile.erge.intent.action.COCKROACH
org.agoo.android.intent.action.PING

org.android.agoo.service.ElectionService

org.agoo.android.intent.action.ELECTION_V2

com.qihoo.psdk.remote.QRemoteService

com.qihoo.psdk.service.action.remote

com.qihoo.psdk.local.QLocalService

com.qihoo.psdk.service.action.local

com.slanissue.apps.mobile.bevarhymes.service.MediaPlayerService

com.slanissue.BACKGROUND_PLAY
UPPayPluginEx.apk
.apk android arch:arm

com.unionpay.uppay

com.unionpay.uppay.PayActivity

Activities

com.unionpay.uppay.PayActivity

android.intent.action.Run

com.unionpay.uppay.PayActivityEx

android.intent.action.Run
android.intent.action.VIEW

Permissions

android.webkit.permission.PLUGIN
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_WIFI_STATE
com.tencent.mtt.extension.Player

Services

com.UCMobile.PayPlugin.PayPluginService

android.webkit.PLUGIN

Android Permissions

570ad1ed0804c402f9f76c0f4ed47f39

Permissions

android.permission.ACCESS_NETWORK_STATE

android.permission.INTERNET

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.WRITE_SETTINGS

android.permission.WAKE_LOCK

android.permission.ACCESS_WIFI_STATE

android.permission.PROCESS_OUTGOING_CALLS

android.permission.ACCESS_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_COARSE_LOCATION

android.permission.SEND_SMS

android.permission.READ_SMS

android.permission.WRITE_SMS

android.permission.VIBRATE

android.permission.WRITE_SETTINGS

android.permission.READ_LOGS

android.permission.PROCESS_OUTGOING_CALLS

android.permission.GET_TASKS

android.permission.SYSTEM_ALERT_WINDOW

android.permission.CAMERA

Sharing

General

Malware Config

Signatures

Files

com.slanissue.apps.mobile.erge

com.slanissue.apps.mobile.bevarhymes.SplashActivity

Activities

com.slanissue.apps.mobile.bevarhymes.SplashActivity

com.slanissue.apps.mobile.bevarhymes.SplashActivity2

com.slanissue.apps.mobile.bevarhymes.VideoViewPlayingActivity

com.tencent.tauth.AuthActivity

Permissions

Receivers

com.umeng.message.RegistrationReceiver

com.umeng.message.UmengBroadcastReceiver

com.slanissue.apps.mobile.bevarhymes.receiver.UsbBroadCastReceiver

com.qihoo.psdk.local.QBootReceiver

Services

com.umeng.message.UmengService

org.android.agoo.service.ElectionService

com.qihoo.psdk.remote.QRemoteService

com.qihoo.psdk.local.QLocalService

com.slanissue.apps.mobile.bevarhymes.service.MediaPlayerService

com.unionpay.uppay

com.unionpay.uppay.PayActivity

Activities

com.unionpay.uppay.PayActivity

com.unionpay.uppay.PayActivityEx

Permissions

Services

com.UCMobile.PayPlugin.PayPluginService

Android Permissions

570ad1ed0804c402f9f76c0f4ed47f39